$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32352e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e32352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: Rg3RVm+Wb9ONtUp+6abOc2SVgrNv4EHKby4dipmbm2M= Subject key identifier: 95:B5:E4:FD:42:44:51:3A:E5:39:1B:30:2D:E6:8A:FC:CE:51:3F:31 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 53EADF8449515B4D331C9FD9DEEBC703DBF7B123 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32352e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:32 +0000 ROA not before: Sun 03 May 2026 02:58:32 +0000 ROA not after: Sun 02 May 2027 03:03:32 +0000 asID: 18059 IP address blocks: 122.128.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ea:df:84:49:51:5b:4d:33:1c:9f:d9:de:eb:c7:03:db:f7:b1:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:32 2026 GMT Not After : May 2 03:03:32 2027 GMT Subject: CN=95B5E4FD4244513AE5391B302DE68AFCCE513F31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5a:bb:34:48:26:94:2a:47:3f:bf:44:3b:65: e1:3a:52:33:28:9b:4e:7d:3f:f5:67:a6:e2:65:20: 22:11:0a:9f:da:77:a2:ce:f7:ea:25:4b:56:0f:53: 2c:a2:a1:a8:08:18:32:ab:f4:f5:9a:34:25:ee:99: 76:b8:da:81:11:ad:1b:ac:3d:8c:d2:aa:cd:38:fb: db:91:40:47:77:86:8c:05:0d:9f:77:33:c6:a0:d5: dd:20:6b:cd:bf:47:f7:b3:ca:aa:6c:5d:1f:e5:70: d8:d8:71:c5:1f:71:53:eb:39:1d:07:c1:bb:81:5d: 32:0b:f3:8e:92:70:47:21:7b:a5:6e:b3:eb:b4:b9: f3:c4:7c:64:1d:b6:ac:3f:a0:1f:4c:7e:d5:a4:18: a3:52:b9:ba:d4:58:3b:3f:6c:66:5b:63:29:0d:96: 52:b3:d1:bd:43:36:1a:94:38:7c:84:ea:6b:4a:f0: f4:83:90:74:df:a7:e4:01:7c:d8:45:18:af:86:38: 66:8f:f5:81:90:59:a0:37:b4:5a:f5:c2:b0:12:03: 72:a5:9b:47:13:4e:d2:08:27:47:59:7c:cb:ab:c5: cb:19:9c:46:5a:5b:e1:9b:d9:59:af:3e:99:53:da: 68:f2:9f:2a:2c:f1:f5:2a:81:da:3c:e2:00:16:64: e8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B5:E4:FD:42:44:51:3A:E5:39:1B:30:2D:E6:8A:FC:CE:51:3F:31 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.25.0/24 Signature Algorithm: sha256WithRSAEncryption a0:6c:1e:7b:e9:d1:d1:2f:24:b4:a7:00:9c:7e:37:25:78:cb: 44:53:9c:a0:75:3b:35:a8:b2:a2:df:e4:2c:01:07:45:ed:62: f4:32:76:01:2f:af:5c:6c:7b:c0:ab:95:e1:d2:e2:1d:17:c4: ef:d9:a6:0e:b1:33:47:85:e5:97:be:42:aa:2e:df:e9:aa:0d: 62:74:db:ad:f0:b7:f8:ac:5c:2c:01:04:0c:9b:93:ef:13:f5: 07:ba:de:a1:4f:58:ce:4e:32:89:b5:b6:07:eb:53:af:ba:3b: bc:16:05:7e:3c:8b:0d:5c:57:cf:3b:c1:00:fa:47:8f:1b:a1: 7f:da:b3:17:c8:90:e6:87:01:4d:58:9b:2e:b0:ef:d0:d7:96: 04:dc:c1:51:a3:a6:39:76:a8:79:58:4c:99:b2:ca:3a:f9:1f: 10:a0:b2:8c:14:22:96:d8:48:22:6a:f5:ed:e5:3a:de:11:16: 8f:5f:46:c8:33:d3:5e:5b:cd:11:1e:49:fa:fe:15:18:85:da: c5:11:19:7d:26:78:ff:52:1e:b7:7b:73:aa:f0:39:3a:d3:5e: 4f:2b:62:ae:26:36:5f:ef:a3:8f:58:f0:20:bc:f8:7d:e5:a3: 75:51:d3:7c:34:8f:15:46:5d:5f:15:cf:68:44:cd:21:e7:f5: 60:ae:94:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU+rfhElRW00zHJ/Z3uvHA9v3sSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzJaFw0yNzA1MDIwMzAzMzJaMDMxMTAvBgNV BAMTKDk1QjVFNEZENDI0NDUxM0FFNTM5MUIzMDJERTY4QUZDQ0U1MTNGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjWrs0SCaUKkc/v0Q7ZeE6UjMo m059P/VnpuJlICIRCp/ad6LO9+olS1YPUyyioagIGDKr9PWaNCXumXa42oERrRus PYzSqs04+9uRQEd3howFDZ93M8ag1d0ga82/R/ezyqpsXR/lcNjYccUfcVPrOR0H wbuBXTIL846ScEche6Vus+u0ufPEfGQdtqw/oB9MftWkGKNSubrUWDs/bGZbYykN llKz0b1DNhqUOHyE6mtK8PSDkHTfp+QBfNhFGK+GOGaP9YGQWaA3tFr1wrASA3Kl m0cTTtIIJ0dZfMurxcsZnEZaW+Gb2VmvPplT2mjynyos8fUqgdo84gAWZOhtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlbXk/UJEUTrlORswLeaK/M5RPzEwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAGTANBgkqhkiG 9w0BAQsFAAOCAQEAoGwee+nR0S8ktKcAnH43JXjLRFOcoHU7Naiyot/kLAEHRe1i 9DJ2AS+vXGx7wKuV4dLiHRfE79mmDrEzR4Xll75Cqi7f6aoNYnTbrfC3+KxcLAEE DJuT7xP1B7reoU9Yzk4yibW2B+tTr7o7vBYFfjyLDVxXzzvBAPpHjxuhf9qzF8iQ 5ocBTVibLrDv0NeWBNzBUaOmOXaoeVhMmbLKOvkfEKCyjBQilthIImr17eU63hEW j19GyDPTXlvNER5J+v4VGIXaxREZfSZ4/1Iet3tzqvA5OtNeTytiriY2X++jj1jw ILz4feWjdVHTfDSPFUZdXxXPaETNIef1YK6Uug== -----END CERTIFICATE-----Generated at Wed May 13 09:47:54 2026 by rpki-client